12 matches found
EUVD-2025-15494
Malicious code in bioql PyPI...
CVE-2025-39487
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ValvePress Rankie valvepress-rankie allows Reflected XSS.This issue affects Rankie: from n/a through = 1.8.2...
CVE-2025-39487
CVE-2025-39487 affects the WordPress Rankie plugin (Rankie)
CVE-2025-39486
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in ValvePress Rankie valvepress-rankie allows SQL Injection.This issue affects Rankie: from n/a through 1.8.2...
CVE-2025-39486
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in ValvePress Rankie valvepress-rankie allows SQL Injection.This issue affects Rankie: from n/a through 1.8.2...
CVE-2025-39486
CVE-2025-39486 affects the WordPress plugin Rankie by ValvePress, specifically versions prior to 1.8.2. The issue is an SQL Injection caused by improper neutralization of special elements in SQL commands. The associated CVSS 3.1 vector (N/ L / L / N / C:H / I:N / A:L; scopeChanged) yields a base ...
PT-2025-25677 · Unknown · Valvepress Rankie
Name of the Vulnerable Software and Affected Versions: ValvePress Rankie affected versions not specified Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks...
CVE-2025-39493
Missing Authorization vulnerability in ValvePress Rankie valvepress-rankie allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Rankie: from n/a through 1.8.2...
CVE-2025-39493
Missing Authorization vulnerability in ValvePress Rankie allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Rankie: from n/a through 1.8.0...
CVE-2025-39493
Missing Authorization vulnerability in ValvePress Rankie valvepress-rankie allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Rankie: from n/a through 1.8.2...
CVE-2025-39493
CVE-2025-39493 is a missing/broken authorization vulnerability affecting ValvePress Rankie WordPress plugin versions up to and including 1.8.0. The issue arises from incorrectly configured access control levels, enabling unauthorized access to restricted functionality. Public sources in the conne...
PT-2025-21700 · Valvepress · Valvepress Rankie
Name of the Vulnerable Software and Affected Versions: ValvePress Rankie versions 1.8.0 and earlier Description: The issue is related to a Missing Authorization vulnerability in ValvePress Rankie, which allows exploiting incorrectly configured access control security levels. Recommendations: For...